From the Metro UI, if you start typing: 'Pow' then you should see the 2
PowerShell Apps, choose the ISE version. There are two cmdlets
Get-EventViewer and Get-WinEvent, in each case you need -LogName to specify
the log you want to view.

Guy Recommends: SolarWinds' Log & Event Management Tool

LEM will alert you to problems such as when a key
application on a particular server is unavailable. It can also
detect when services have stopped, or if there is a
network latency problem. Perhaps this log and event management
tool's most interesting ability is to take corrective action, for
example by
restarting services, or isolating the source of a maleware attack.

Yet perhaps the killer reason why people
use LEM is for its
compliance capability, with a little help from you, it will ensure that your organization complies with industry
standards such as CISP or FERPA. LEM is a really smart
application that can make correlations between data in different logs,
then use its built-in logic to take corrective action, to restart services,
or thwart potential security breaches - give LEM a whirl.

If you call for Help then you can confirm that Get-WinEvent has a
-FilterHashTable parameter, whereas Get-Eventlog does not. While the example
below filters on just two properties, it would be easy to add more criteria
such as ProviderName.

Note 5: The syntax is a little tricky; a) There is no
hyphen before the parameter. b) The key-value pairs are joined by the = (equals sign) and not
PowerShell's -eq. Also remember the overall format
@{Filter="criteria"}

Note 6: You can also filter on ProviderName="*Auditing".
For this property you can employ the famous * wild card. Indeed you
could book-end wild cards thus: "*sched*. I discovered this when
searching for Scheduled events in the Application log.

»

Summary of Windows 8
Security Event Logs

This page employs my technique of comparing what you see in the Event
Viewer, with the output of PowerShell commands. Our vehicle was the
Security logs and our method included filtering with the Action pane, and
mastering PowerShell's -FilterHashtable parameter.